This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/h5WLpmHENczSXCBgRi72ANJxnuA.cer File: h5WLpmHENczSXCBgRi72ANJxnuA.cer (raw, json) Hash identifier: RoUW+VgeaDDZYWIfdPzNixQOtI9rRsT5h07YGxOCJiY= Subject key identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB74B09CF64903E6AF07640E51F303 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:20 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 8889 AS: 35356 IP: 80.93.144.0/20 IP: 83.142.248.0/21 IP: 193.29.36.0/23 IP: 193.29.40.0/23 IP: 2a01:a0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:74:b0:9c:f6:49:03:e6:af:07:64:0e:51:f3:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=87958ba661c435ccd25c2060462ef600d2719ee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e0:0b:b1:e6:c0:03:cf:88:a3:01:d4:d6:b4: 27:f5:7d:e6:8c:e2:bf:6b:65:b2:1e:64:05:18:7e: cf:51:ef:c3:ae:cf:ff:c3:b5:6e:95:50:81:c0:7c: cf:37:be:07:1e:1c:82:b8:a1:16:ae:61:55:ce:09: 41:1c:7f:2d:90:be:ed:f6:79:0e:39:8d:7a:ce:58: 39:59:81:97:06:29:51:e8:3f:85:d2:20:52:fa:66: e2:d8:e0:81:5b:cc:63:2d:89:82:ca:97:1b:b7:03: 41:18:88:76:e3:d8:2e:68:d2:55:bc:80:29:2f:b4: 0a:1f:f2:37:80:66:4d:fe:c1:be:2b:02:b6:d2:de: a1:62:82:8b:ea:e7:94:55:23:a5:af:96:04:8b:d7: 02:0e:4c:03:70:a5:c8:27:f6:47:c5:b4:36:7e:62: 09:46:08:47:2b:e1:2d:7e:12:02:13:5a:47:16:69: 4f:5c:9b:da:78:3e:9d:b3:4c:fe:bb:11:e0:5e:b1: 28:be:d7:82:01:86:66:cd:53:2e:ca:30:37:09:32: 33:f3:1f:ff:15:ed:3e:36:a1:4c:ee:a0:2f:7c:b4: c2:d9:32:d3:ce:e6:69:f4:61:f3:60:9f:a4:52:fa: 14:b0:22:8b:b8:db:f1:6c:9a:1d:95:9e:54:d8:16: 22:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:95:8B:A6:61:C4:35:CC:D2:5C:20:60:46:2E:F6:00:D2:71:9E:E0 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/65cf0a-ade3-40b1-9987-8c34e4cf9026/1/h5WLpmHENczSXCBgRi72ANJxnuA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.93.144.0/20 83.142.248.0/21 193.29.36.0/23 193.29.40.0/23 IPv6: 2a01:a0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 8889 35356 Signature Algorithm: sha256WithRSAEncryption 9e:85:e5:78:6a:54:b1:bc:ce:31:9b:fd:06:2a:4c:fa:b1:42: 18:cc:60:35:a3:c4:17:9d:c0:63:45:86:0d:31:f1:ff:c9:8d: 23:0d:55:74:eb:3e:10:fa:20:5a:95:d1:27:1e:b7:1d:12:19: 89:06:2b:21:e6:ec:7d:b5:3c:8e:74:5b:b3:31:6a:cf:b7:f4: e4:a7:09:7c:63:82:24:18:37:8d:ab:dc:97:02:90:5c:cf:17: 8c:1c:a8:59:23:dd:62:92:f7:7e:15:62:b6:53:da:12:3c:d9: 18:3a:53:aa:21:83:ca:5e:f8:06:a4:6d:56:79:9c:87:fd:c0: c0:b0:76:3b:c0:a2:25:58:9a:88:ae:b1:50:34:a3:8c:25:f7: 2b:50:89:de:a9:33:80:77:4d:ed:b9:81:6b:92:9e:44:4a:79: 3f:c3:64:09:4a:eb:f4:e2:17:92:49:51:a8:5d:89:72:b1:be: 7c:e3:b6:9a:0e:2d:3a:6d:d7:28:f9:82:c9:d3:69:29:01:d2: a3:2a:f4:95:3a:1c:87:f7:73:68:db:5c:02:40:c2:79:70:98: fa:a5:e1:64:1e:fb:26:ae:4e:e2:fd:cc:7d:79:f9:45:26:42: d6:6e:93:ec:66:88:13:8d:62:0f:38:db:a4:ef:d5:73:cb:8e: 90:b2:ba:b5 -----BEGIN CERTIFICATE----- MIIFuTCCBKGgAwIBAgISAZt263SwnPZJA+avB2QOUfMDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Nzk1OGJhNjYxYzQzNWNjZDI1YzIwNjA0NjJlZjYwMGQyNzE5ZWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAweALsebAA8+IowHU1rQn9X3mjOK/ a2WyHmQFGH7PUe/Drs//w7VulVCBwHzPN74HHhyCuKEWrmFVzglBHH8tkL7t9nkO OY16zlg5WYGXBilR6D+F0iBS+mbi2OCBW8xjLYmCypcbtwNBGIh249guaNJVvIAp L7QKH/I3gGZN/sG+KwK20t6hYoKL6ueUVSOlr5YEi9cCDkwDcKXIJ/ZHxbQ2fmIJ RghHK+EtfhICE1pHFmlPXJvaeD6ds0z+uxHgXrEovteCAYZmzVMuyjA3CTIz8x// Fe0+NqFM7qAvfLTC2TLTzuZp9GHzYJ+kUvoUsCKLuNvxbJodlZ5U2BYiQQIDAQAB o4ICxTCCAsEwHQYDVR0OBBYEFIeVi6ZhxDXM0lwgYEYu9gDScZ7gMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg2LzY1Y2Yw YS1hZGUzLTQwYjEtOTk4Ny04YzM0ZTRjZjkwMjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYvNjVjZjBh LWFkZTMtNDBiMS05OTg3LThjMzRlNGNmOTAyNi8xL2g1V0xwbUhFTmN6U1hDQmdS aTcyQU5KeG51QS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQEUF2QAwQDU474AwQBwR0kAwQBwR0oMA0EAgAC MAcDBQAqAQCgMB4GCCsGAQUFBwEIAQH/BA8wDaALMAkCAiK5AgMAihwwDQYJKoZI hvcNAQELBQADggEBAJ6F5XhqVLG8zjGb/QYqTPqxQhjMYDWjxBedwGNFhg0x8f/J jSMNVXTrPhD6IFqV0Scetx0SGYkGKyHm7H21PI50W7Mxas+39OSnCXxjgiQYN42r 3JcCkFzPF4wcqFkj3WKS934VYrZT2hI82Rg6U6ohg8pe+AakbVZ5nIf9wMCwdjvA oiVYmoiusVA0o4wl9ytQid6pM4B3Te25gWuSnkRKeT/DZAlK6/TiF5JJUahdiXKx vnzjtpoOLTpt1yj5gsnTaSkB0qMq9JU6HIf3c2jbXAJAwnlwmPql4WQe+yauTuL9 zH15+UUmQtZuk+xmiBONYg8426Tv1XPLjpCyurU= -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:37 2026 by rpki-client